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h Introduction 


In this paper we describe some relatively simple changes that 
have been made to an existing automatic theorem proving program to 
enable it to prove efficiently a number of the limit theorems of ele¬ 
mentary calculus. These changes include subroutines of a general 
nature which apply to all areas of analysis, and a special “limit- 
heuristic'' designed for the limit theorems of calculus. 

These concepts have been incorporated into an existing LISP 
program and run on the PDP-10 at the A.I, Laboratory, M.I.T., to 

obtain computer proofs of many of the limit theorems, 'including the 
-/At! rh& 

theorem that a- limit ofsum of two real functions is the sum of 
their limits* and a similar theorem about products. Also computer 
proofs have been obtained for are easily obtainable! of the theorems 
that a conti r^ius function of a continuous function is continuous, and 
that a function having a derivative at a point is continuous there, 
as well as limit results for polynomial functions. 

The limit theorems of calculus present a surprisingly difficult 
challenge for general purpose automatic theorem provers. One reason 
for this Is that calculus is a branch of analysis, and proofs In 
analysis require manipulation of algebraic Expressions, solutions 
of inEqualities, and ether operations which depend upon the axioms 
of an ordered field. It is In applying these field axioms that auto¬ 
matic provers are usually forced into long and difficult searches. 

On the other hand, a human mathematician is often able to easily 
perform the necessary operations of analysis without being aware 



of the explicit use ef the field axioms. One purpose cf this paper 
is to describe ways in which automatic provert car also avoid the use 
of the field axioms and speed up proofs in analysis. Section 1 ex¬ 
plains how this is done using a United theory of types, and routines 
for algebraic simplification and solving linear inequalities . 

In Section 3 we present the limit-heuristic,, give examples 
of its use, and discuss its "forcing" nature which enables it to 
curtail comfeinatorial searches. 

The reader interested only in Resolution based programs should 
skip Sections 4 and 5 and go directly to Section 6 t where we explain 
how resolution programs can be altered to make use of the limit 
heuristic and other concepts. 

In Section 5 we give a detailed description of a computer proof 
of the theorem that -a- limit o f -a- p roduct of two functions Is the product 
of their limits. This proof was made by a program which is the same 
as that described in {t], except that the subroutine* RESOLUTION, in 
[l] has been replaced by a new subroutine called IMPLY, We have thus 
eliminated resolution altogether from our program replacing it by an 
"implication method" which we believe is faster and easier to use 
{though not complete]. This implication method is described briefly 
in Section 4, and excerpts from actual computer proofs using it are 
given there and in Section 5, 

It appears that some pf these ideas may have wider implications 
than the limited scope in which, they were used here. This is dis¬ 
cussed in the comments of Section 7 and throughout the paper. 





2, Types and I nequalities 


In the work, described in this paper we have used meirbarship 
types whereby the type A is assigned to x whenever it is known that 
(x e A), 

Let <a b> denote the open interval from a to t f R =□> 

p = <q *>* , and ^ Q> * We are primarily interested in interval 

types, including the types 13, and J4, Thus in try fug to prove 

(Ci < * ■+ Q(jO) 

we would assign the type P (or -=0 «> ) to x and then try to prove Q(x). 
For example, suppose that we are to prove 

(1) (0 < b ■+ SOME x (0 < x x < b])J 

One valid approach is to solve for x in 

(£) (0 < b ■+ 0 < x) 

and then try to verify 

[3) (0 -= b + x c b) 

for that same x. But usinu notching we would get as a solution of (2) 

2 

the substitution [b/x] , and require 

(0 < b * b < ti) 


1. We u&e the words "SOME" and "ALL" as our existential and universal 
quantifiers. Thus '“SO'i'lE x F(x)" means |b for some x P(x)", and "ALL x P£x.) 
means “for all x P(x} H . 

Z , We follow the usual practice of denoting a substitution by a list 
[b./a.j b-/a*+ b /a ] where each a, is to be replaced by the cor- 

reWdUS bf. n " 1 








in {3) which is impossible. 

Of course (1) is improvable without further hypotheses (or 
axioms) but ft can be easily bandied by the use of types (which impli¬ 
citly assumes certain axioms'). Our approach in proving {1) is to 
assign. *0 M3r to b h and then try to prove 

(.3} SOME x (0 < x. x < b) r 

We first solve 

(5) (0 < *} 

by assigning type *0 ** to x and then solve 

(6) lx < b} 

by assigning the type rO b* to x. The resulting type of x s <0 was 
derived as the intersection of its initial type *0 »> gotten from (5), 
and the interval <— b> s which would have been the type gotten from (6) 
alone. Since this intersection is not empty (because b has type *0 *>) s 
it is assigned as the resulting type of x. Even though the variable x 
had already been "solved for' r in {5) (typed) „ it remains a variable in 
the solution of (6) (though If (Kited fn scope) and therefore could be 
"Solved for" again (retyped)* In the examples of Section 5 some of the 
variables are retyped two or three times, and this greatly simolifies the 
proofs. 


Types are used by the routines SOLVE'- and SET-TYPE which are 



described below- 


2J SOLVED 

This fs a routine for solving linear inequalities.. (SOLVE* A B} 
chooses a variable from A or from B and attempts to solve the Inequality 
(A * B] in terms of that variable* If this fails it then chooses another 
variable and tries again. Since the terms and variables of A and B may 
be typed, this routine must take into consideration such types and reset 
the type of the variable when the solution is obtained- In fact the ans¬ 
wer is completely given by the new types. The examples below best ti l us- 
trate this point* If it can show that A is less than B* then the routine 
will return the answer T whether or not A and B have any variables. 



Examples * 


:nput 


OUTPUT 


B 


1.x 1 

{no types) 


Value of 
(5QLVE< A Bj 


New Type of x 


<■-» > 


2 . x I 

Type x is <0 


^0 


3 . 0 


1 


4. x-a+c (-K+d) 

Type a is. ^0 *> 


t C Cl. 

<rr? - rr>i> 


£, X 


D, 


Type x is <0 


(intersection <0 


Type D| is <0 => 

Type D ? is <0 

In this example the type of D in the answer could have been 
given as *0 (minimum D-|D,)> but we find the intersection form iFtore 
conYenient. 




a_ 

x 


to 


x 



Type x is <0 
Type a is <-* 0> 


TypE b is ^0 *=■> 









In the actual theorem proving process, SOLVE- 7 is applied to 
formulas that have been converted to quantifier free form by the intro- 
dudtton of skolem expressions/ Precautions are taken by SOLVE* to 
insure that it does not solve for a variable x in terms of a skolem 
expression in which x occurs. This is essentially the same precaution 
taken by A, Robinson in his Unification Algorithm [2], 

For example, consider the false statement 

SOME x ALL y (y < x) . 

The Skolem form of this is 

(y *) * * ■ 

The result of a call to (50LVE* (y x) x) Is NIL, since x occurs in 
the Skolem expression [y x). 

On the other hand* the theorem 

SOME x ALL y SOME z {y < x+r) 

which has skolem form 

fy x} * x+z 

can be proved by a call to (SOLVE* (y x) (x+z)) which correctly assigns 
type *{y x)-x to z„ 


3. A skolem expression Is a term whose main function symbol is a 
skolem function, cf,-the-^ootnote In Section 4 which describes the 
elimination of quantifiers by the introduction of skolem functions. 




lit. 

Actually. t+rHs routine^just retypes a variable in a way that 
guarantees the solution of the desired Inequality. 

More extensive routines could easily be written (indeed have 
been written by others) to solve nonlinear inequalities* but these were 
not found necessary for proving the examples reported here. 

2.2 5QLVE= . This is a routine for solvfng linear equations. Given 
two arithmetic expressions A and E s it selects a variable x from A or 

B and trys to Solve the equation {A * B) in terms of x„ If it succeeds* 
with answer y, it returns the substitution, [y/x] + Otherwise It 

selects another variable and trys again, returning NIL if all fail. 

2.3 SET-TYPE^ This is a subroutine which assigns typos to certain 
skolem expressions. If a formula of the form (A e B) is in a conjunctive 
position of E (i*e., E can be expressed as ((Ac 3) A D) for some D), 

and ff A is a sfcolem expression which does not occur in B, then (SET-TYPE E) 
assigns the type B to A and returns D, the formula gotten by removing 
(A £ B) from E, If A already has type C. then SET-TYPE assigns the inter¬ 
section {E-H C) as the typE of A, if (E C) is non-empty. If (BaE ) 
is empty it returns E. If (BftC '} is not empty, but cannot 

be given specifically then the formula (intersection & C) is given as the 
type of A, 

For example, if E is the formula 

{A a {x £ P A (B ■* y e K))) 


then (SET-TYPE E), assigns P as the type of x* and returns 




(D 


(A a (B ■+ y t P]] , 


If, in this example * x already had typej^, 

then is assigned as the new type of x; 

If it already had type <-l 1> then it assigns type <D b to x; if it 
already had type «-= -1> then it returns L XA ^ (6 —* if £ £)), 

Irk a similar way, it assigns types to skolem expressions which 
satisfy certain inequalities. For example, if £ is 

{A < 0 a (B < 1 v C)) 

then (SET-TYPE E) assigns type *-» 0> to A and returns 

(B < \ v C), 

and if E is 

{A < B A C) 

then {SET-TYPE E) assigns type *-*■ B> to A, and type *A *■> to B and returns 
C. Similarly, (SET-TYPE (A f Q)} can be made to assign type (union <— 0> 

*0 &>} to A, but this sort of typing was not used in any of the examples 
given in this paper. 

ZA SIMPLIFY 

This is an algebraic simplification routine which converts al¬ 
gebraic expressions into a canonical form, sorts its terms, and cancels 
complementary terms of the form (a+(-a}J and (a^). It is used in all of 
our routines which manipulate algebraic expressions. Such routines are 


not new to the literature. 



Exa^npl es . 


INPUT 

OUTPUT 

(a-(tr»-C>> 

(a-b + a-c) 

(4'b-i) 


Ma+^Mb+c) + c-a) 


(|b+c-b| + a) 

(fcf + a) 

H(»~) - 1 1> 

0 





3. Limit Heuristic 


The limit heuristic rule defined below, in conjunction wlth the 
routines described in Section 2 t is used to help prove limit theorems. 

LIKIT-HEURISTIC: When trying to use a hypothesis of the type 

3a]*e h 

(and possibly other hypotheses) to establish a conclusion of the type 
|B|*E* 

r 4 

first try to find a substitution a which wilt allow B to be expressed 

s 

as a ntm-trivial tOmbination of A.^* [B E K-A + L) f and then try to 
establish the three new conclusions: 

A h {|K| «H) for some K, 

B* (|A| <£/2-H) vt 

C. { |L | <E/2) q 

Such a procedure is valid because if we can indeed find such a q 
and prove A, B, and C, then we would have 

f B l e - A + U c 
MIM^I + [L|) ff 

< M-£/£-M + E/2 
= E, 

Of course, this is based on the triangle inequality, and uses the fact 
that 1/2 + 1/2 = 1, H.l/M = 1 forH*D* etc. 


4 t The notation B denotes the result of applying the substitution 
□ to B. 0 

5- The routine EXTRACT, described in Section 3 + l below, is used 
to express B in terms of A. 




A& an example* in proving the theorem that the limit of-^product 
of two functions of real variables is the product of their limits* we find 
ourselves trying to establish a conclusion of tlhe type 
(1) |f(x)<g(x) - Ly^V E - 

Among our hypotheses is 

(z) \n*') -1,1 - e b , 

which can be used to help establish (1} (provided that we satisfy the 


conditions for (2) )„ If we apply the limit heuristic to (2) and (1) 
we find that for a - [ x/x" ] 

(f(x)-g(x) - L^L £ ) 
can be expressed as a combination of 


(f(x') - l^)^ f 


viz,* 

g{x)-(f(x) - + L 1 -£g(x) - L ? )» 

and are able to establish the three subgoelsi 



A. 

1st* 

}j 

for some H. 


e. 

\n* 

> ‘ L,| 

•; E/2-M. 


c. 

h- 

(sU) *■ 

■ Lj>l<E/2. 

Subgoal 

A follows 

from 

the hypothesis 

(3) 

let 

x ,r ) 

- 4 1 * 

E 11 


(which also has conditions that must be satisfied}, Subgaal B follows 


from {2}t and subgoal C follows from {3}, 

The complete proof of the limit product theorem is given in 
Section 5 in great detail. The limit heuristic is used there not 
only to set up the three subgoals A, B, and D, but also to establish 


A a m2 C* by proposing further subgoals. 

Because the limit heuristic enables our program to prove many 
theorems about limitSi we regard it as a rather interesting trick. 

But more interesting and imaortant than the fact that it works some 
problems is the principle behind it. That principle might be stated: 

To establish a conclusion c from several 
hypotheses* among which is H* force H to 
contribute all it tan towards establishing 
C and leave a remannder to be established 
with the help of the GthEr hypotheses. 

The value of such a "forcing" technique is twofold. First* if 
one can truly make K contribute all it can towards C, then H is not 
needed to establish the remainder. That is* a reduction in the number 
of hypotheses is achieved while a significant step in the proof is made, 

Second, it Is implicit In the notion of "force" that certain 
facts are used to make an Inference in a computational manner. For 
exan+'le, the limit heuristic "uses" many facts about algebra, such as 
the triangle inequality; but these facts are used to compute something* 
not to make random inferences. This strongly inhibits the generation 
of subgoals that occurs if one freely permits the application of axioms 
to his goals. We comment further on this "computational 11 aspect of the 
limit heuristic in Section 7. 

We feel that such a forcing technique has applications In other 
areas of theorem proving where two or more hypotheses K-|* are 

needed to establish one conclusion C that cannot be logically divided. 






In such applications the user must provide a heuristic which will enable 
the computer to determine how to get a partial result from and leave 
a remainder C to be proved by the other hypotheses. 

The limit heuristic uses the routine EXTRACT described below,which 
in turn uses the simplification routine described in Section 2. 

3,1 EXTRACT 

If there Is a substitution o for which B & tan be expressed as a 

non-trivial combination of A * 

□ 

(B - K-A + L)d 

then (EXTRACT A B} returns (K L a). where a Is the most general such 
substitution. Otherwise NIL is returned. 

A more precise definition follows the examples. 



Exampl OS 

In the following, the symbols x, t, and h represent variables while all 

other symbols represent constants, 

€ 

1 . (EXTRACT A (K-A+L)} = (K L T), 

(EXTRACT A[t) A(t 0 )) Ml 0 [t fl /t]). 

3 , (EXTRACT (f(x)-L L ) (f(x 0 )+g(x 4 ) - (Lj+Lg))). 

- (1 fg(x 0 } - L 2 ) [x a /x]). 

fl. (EXTRACT (f(xKi) (f(x 0 )- 9 (x a ) - Lj-L 2 ) 

- tg p > (L 1 -g(Xp) - Lj.L 2 ) [x„/x]). 

5. (EXTRACT (fW-L,) ( ^ ? - ( - T >. 

6, (EXTRACT ( f(a+h)- ffa) - F') {f(x) - f(a]}) 

ii 

- ((x-a) (x-a)'F' [h/(x-a)]), 

7, (EXTRACT ((x D -a) (x? -a®)) - ((x 0 +a) 0 T). 

8. (EXTRACT (a^o+c) [b*x 0 +d)) 


9. (EXTRACT (a-x 0 +c) [b-y 0 +d)> HIL. 

Examples 3* 4* 5 are useful In proving limit theorems about the 
sun cf two functions* the product of two functions (see Section 5), and 


£, Throughout ttiis paper we use the letter "T" to denote both 
"truth"* and the empty substitution. This reserves "MIL' c 
for denoting "false". 


7 k 


In this example, the second argument is first converted to 

(L]-1_- ffx} ■ 1. . . ) s by use of a least coitimon denominator, 

f<*Ri fURi 







the quotient of two functions. Example fi is used in proving that a 
differentiable function is continuous 


Suppose there is a substitution c and an expression x such 
that, A„ and B are polynomials fn x. anti B is linear in x r Then 
there are expressions a, t, b and tf such that x does rot occur in c s b t 
or d s and and E.. can be reexpressed as 

A^ - ax +■ c . 

E o = b - x + d t ■ 

and {EXTRACT A 3) returns the value [t [d - ■} □ )* If no such 

and x exist then EXTRACT returns NIL* 


4. The Tmpl ication Method 


At the heart of the program is a subroutine called IMPLY whose 
essential purpose is to handle logical deductions in the predicate cal' 
cuius. It is a replacement for Resolution ir [1]. we offer her* a 
cursory description of Its operation, sufficient to an understanding 
of the proofs In section 5- 

The operation of IMPLY bears a closer resemblance to the proof 
techniques of the mathematician than does Resolution. In general IKPLY 
examines the connectives in the formulas given as arguments to ft and 
creates one or two subgoals. These subgoals are usually calls to IffPLY 
with new arguments which are closely related to but simpler than the 
original arguments. The resulting analysis of the formula to be proved 
is easy to follow. 

This rather natural operation bears some responsfbi1ity for 
the development of the Limit ^euristic and the other techniques of this 
paper. In comparing the subgoals called by IMPLY with the methods of 
proof used in elementary calculus we established new subroutines and 
subgoals, such as the Rimit- Reuristic, sufficient to prove a number of 
theorems. 

The subroutine IMPLY has two arguments l 

E {the current formula under examination) 

R { a reserve). 

Usually E Is of the form 

[H-0 

The answer to a call to IKPLY is either a substitution or NIL. The 
latter indicates failure to establish the subgoal. IMPLY attempts to 




find and return the most general substitution 5 such that (R ■ £)_ is true. 
!f u is the empty Substitution then IHPLV returns T. 

Table 1 jives rules describing some of the operations of irfPLY. 
These rules are applied in the order of their occurence in the table; if 
one fails, the next is tried; tf all fait,IT J P:LY returns NIL IMPLY re¬ 
turns the value given by the first rule which does not give NIL. In 
the following we use the shorter notation [ E > R } for (IMPLY E ft). 


INPUT 


O-JTPUT 


1. 

[H - 

c* ft] 




If H = C . then 




If there is a substitution 



which unified H and 

C, 



(i.e, > = C r j then 

2 , 

[A A 

e* R] 



2.1 

(" [A,R] yields ol 

8 



■— 1 

-x^_ 

0 

3 

£k 

then 


2.2 

{_[MJ ol yields 

o2 

3. 

[A v 

e. r] 




If [A.ft] yields cl. 

then 



If [E„R] yields ct. 

then 


T 


cr 


( q 1 w o Z } 


tit 


4 - [(A ■+ e) ■+ C s R] 

4.1 f[G + C, ft] yields °1 

n IfV and then fol u o2) 

4.2- (JR ■+ A, NIL] ^ yields o2 

This rule is cointronly known as backwards tha 1 n 1 ng„ 


5. [H + (A + B], R] tH a A - S 5 R] 


6. [A v E - C T Ft] 

6.1 ('[A - C + R] yields $1 

If J and then (crl v cr^} 

L[S_.-| - C, R^] yields p 2 

6.2 f[B + C. R] yields ol 

If \ and then (<?1 v $2) 

L»,i -*■ R^.] yields o£ 


B. When we use an expression like "[A S R] yields 3 \ ft is to be understood 
that we also mean that 5 is not NIL. 






[A A B - C. E] 

]f [A ■** C, R] yields rT then 

If [e * Cs R] yields c-2 then 


trl 

c? 


a. 


[H - A a B, R] 

[H ■+ A, R] yields al 

EH 
'EH 


e,i if 


and then (ol u a?) 

B , > R ,] yields □ <? 


8,2 I-f 


B, R] yields si 
and 


[K - A 


o 1 


R 1 ] yields □ £ 


then {a 1 y a2) 


9, [H ■+ A v EL R] 

If [H ■+■ A t ft] yields al then cl 

If [H ■+■ B t R] yields a2 then c£ 


ID. 

tH + 

V 6i 

«1 

[H a A -*■ &„ R] 

11. 

[t-A A 

B t C, 

« 

[B -k A v C, R] 

12. 

j>H ■+■ 

C, R] 


[R + C v H p NIL] 

13* 

[H - 

ML R] 


[H a C - NIL a fi] 

14. 

[A - i 

B C* 

RJ 

[R 1 + C , NIL] 



where R‘ 

and C" 

are gotten by replacing B by A in R and 

15. 

[H ■*■ 

A = Bj 

Rl 

(.SOLVE- A B) 


(Le., if there is a substitution c. 
which unifies A ar.d B* then 
return o) 


Table* 1 (concluded) 


Before a formula E is sent to IMPLY it is first converted to 
a quantifier free fern, but without converting it first to prenex normal 
form. The quantifier free form- is athievbd by tuing skolem functions, 
end is essentially the same as that used jy Vang [3].^ A call is then 
made to (IMPLY £ nil}. 

For example the forimjla 

(1} (P(y) A ALL X (P(X) - q(x)3 - q[y)> 

is first converted to the skolem form 

(Hy a ) A {r(x) - Q(x)} - q(y o )) 

where y Q is a skolem constant and X Is a variable, and proved as follows. 

I. (IMPLY (P(y o ) A (P(x) - Q(x)) + NIL} 

1*1 (IMPLY (P(y 0 ) - Q(y 0 )) (Pfx) * Q(jO )) Rule 7 

This fails, 

1*2 (IMPLY ftP(x) - Q(x)) +Q(y 0 )) P(y & )) 7 

K2.1 (IMPLY (Qfx) - Q(y & )) Pf^)) 4.1 

This yields a ■ [y^/x] by Rule 1.2 


10, Specifically, if "positive" and "negative'^ are given the 

meaning as in Wang £3] pp. 9—10, then the elimination of quantifiers 
consists of deleting each quantifier and variable immediately after 
it, and replacing each variable V bound by a positive quantifier with 
a list whose first member is v and whose other members are those 
variables bound by negative quantifiers whose scope includes v. This 
list which replaces v is simply the application of a skolem function to 
certain arguments, With no ambiguity, but as an aid to memory, the 
skolem function is named v. 



4.2 


1,2.2. {ll^PLY [P{y a ) -{POO ^ Q{y 0 > >) NIL) s 

(IMPLY (P(y 0 J - (P(J D ) v Qfy 0 )J> NIL) 

(IMPLY tPCy 0 > - P>[y 0 >> NIL) 9.1 

This yields T by Rule 1.1 

So the final answer to h is [y /x], and the theorem Is 

proved. 

For the example 

(SOriE x (ALL y P(x,y)) - ALL s (SOME t P(t.s))) 

the sfcolem form is 

(P(x & , y) - P(t* 

A call is made to IMPLY 

(IMPLY (P( V y) - F{t, s o ) MIL) 

which yields % Q fy] by Rule 1,2, QED, 

In trying to prove the non-theorem 

(ALL y (SOME x P(x* y)) ■> SOME t (ALL S P(t, s))) t 

the skolem form is 

(P{{* yh y) * P(t, is. tU 

where (x y) and (s t] -are skolem expressions, A call to IMPLY 

(IMPLY (P((x y)> y) - P(t, (s t))) NIL) 

fallsj Pule 1,2 cannot be applied because the formulas P{(x y}„ y) 
and F(t + (s t)) cannot be unified. A partial unification is given by 
[(x y)/t], but the resulting pair 


? [{x yl, y), P^x y), {5 (x y}}) 


cannot be unified by [{s(* y))/y] since the variable y occurs in {x y)), 
When attempting to Drove an expression E with the help of 
axioms, , A 2 , .. A n > {where all free variables in the A, have been 

universally quantified), a call is made to (IMPLY E‘ NIL) where E' is 
the sikolemized fonn of 

{A ] Afl ; - E). 

In the operations described fn Table 3* a resemblance can be 
seen between the method of Gentzen sequents (cf. Kleenex G3 [4]) and 
the subgoals which IMPLY sets up. The technique of finding a most general 
unifier is the Unification Algorithm of Robinsonian the whole, IMPLY 
is closer to the system of Prawiti [6] than to resolution. 


5, Examples of Computer Proofs, 


Here we g fve excerpts from the proofs of five theorems, which 
were made by the program RRQVER using IMPLY as its principal subroutine, 
PROVE R. is explained in [1] and IMPLY Is described briefly in Section 4 
above, but the reader familiar with Sections 2 and! 3 should be able to 
follow these descriptions with no reference to [1] and little to Section 4. 

In order to use the limit heuristic described in Section 3, 
wo need to add the following rule to Table 1. 

16, [|A| . E' - |&| < E,R] 

If 

16,0 EXTRACT [A &)• is (K L □) (i,e. (& = K-A + L) ) , 

and if 

16J [R - ]K| ^ N, NIL] yields cl," 

12 ° 

for some variable M, and if 

16.2 [fAj < £' ■+ 1A| ^ E/2‘M ? yields o2, 

and if 

16.3 [R ■* jl| < E/?, NIL] yields us/ 

then return the value (o ^ al u a2 v e3). 

Alsoiwe need two additional rules for solving inequalities; 
one rule for types, and one for equations. 

17. [H ^ a < h, R] [SOLVED a b) 

la, [a < b ■* a' < e, R] [(b <c) v (b * e}* R ] 5 

If there is a substitution a for which [a = a') , 

11, In case K * 1 , step 16.1 is emitted, and H is set to 1 in 16,2. 

12, M is given type *0»>and also M is made an additional argument of 
oil skolem functions which already have at least one argument, 

13, In case L = 0, step 16.3 is chitted. 





T 


19. [H ■* A £ B„ ft] 

If A has type 6 then 

20. [a = b + c = (f. ft] (SOLVE- (a-bj (c-d)J 

These five rules are placed at the beginning of Table 1 [Sec¬ 
tion 4), ih the order 17, IS, 19, 20, 16. 

Also a a provision is made for assigning types to an expression 
A when it appears In the form (A c B) or (A * B) in the hypothesis of the 
theorem being proved. This Is accomplished when IMPLY is proving a sub- 
goal of the form [H -+ C+ ft] by replacing H by (SET-TYPE H). Such calls 
to SET-TYPE need Only be made in Rules 5* 10, 13, and before the first 
call to IMPLY, when new material is added to H. (see Section 2+3). 

In what follows, R denotes the real numbers , P denotes the 
positives, and Fftft denotes the functions on ft to We use (Ltm f a L) 

to denote 11m f(x) = l ♦ The standard definition of limit is: 
x-*a 

(Urn f a L) <-> 

(j f fi) a (L t £] a (f e FRK) a 
(ALL e (0 < t * (SOKE 6 (0 < 6 a 

(All x [(x £ R) A fx j* a) A ]x-*| < fi ■+ |f[x} - L| * e]))) 

Example.,]. (Limit of a product) 

The program PROVER is given the formula 

(Lim f i L ] a Lim f a Lg ■+ Lin [f-g) a (L^-L^)) 

The definition Of limit Is used to obtain 

((a e R. A L^eR^A f e ERR A ALL (0 < E^. 

+ SOME 0 ] (0 < D t a ALL Xj (x^ ft. a x ) f a A 
| K|-a| < Dj * jffXj) - L| | * E ] )})) 




^ {a e. J? a - £ a g = TO a 

ALL l 2 (0 < l2 - S0Mf (0 - a 

all k 2 z - A *2 ^ a A 1^2 " a| < D g 

■* " L 2® * 

-+■ (4 r ^ a (L| 'L 2 ) t R a { f ► g} e FFlR a 

ALL E (0 < £ - SOME 0 {0 * 0 a ALL x (x e ft A 

x ^ 3 a |x-a| < D - |(f g)(x} - L-,' L^ | < L}})}} 

The first three parts of the conclusion (a e _R} (L^ + Lg} c _R 

(f*gi) s FRR arc proved by the program using the hypotheses of the 
theorem. 

The remainder of the theorem is prepared for IMPLV by replacing 
(f'SHxJ by (f(x)-g(x}) and by eliminating the quantifiers and Introduc¬ 
ing stolem expressions. 


A 


(1} [(a) e fR) a (L ] ) t fR) a (f) c [FRR) 

to < e 1 - (O * (D 1 E-j} a 

e fR} a Kj / a a i* 1 - (aj | < | J.D| E| > 

- KfK^J - (L r H < E-,))) 

((a) e (R) A (L ? ) c (R) fg) e (FRR) a 
(o - Z 2 - (0 - fD ? E 2 ) a 

f x 2 £ tR) a * 2 * fa) a |x g - (a) | [D £ E ? ) 

- J{gK* 2 > - U 2 H < Ej))) 

- (0 < {E) ■+ [0 < 0 a 

(fx 0) e (R) A {* 0) J* (a) A ](* D) - (a)| * D 
- n)Wg)((* 0)) - [LiKLjU * E))) 

For readability and brevity, the skolem expressions are ab¬ 
breviated in tbe following. Thus x is used in place of fx D)* In place 
of (Ljh ’Ft-") in Place of D)) t and so on* 


Thus we write the above evprest1 on as 


tii > 


/(a t P. a L-j -- A f £ FRR a 

(0 < e t - (0 < ^ a 

(x^ t R a X| f a a |k.-| 

V - |ft*t|} - I’]! 4 E-|)))) 


a[ < ^ 


B v 


j 


^ (a e jl A Lg c ^ A j t FRR a 
(0 < Eg ■+ (0 <■ D ? A 

(x^. c jt a Xg ^ a a |xg 
■*■ | lUg) - Lgl * Eg})}) 


a I < D, 


{0 < E ■* 0 < D A 


I 


T \ 


(* t fi a x / a a |k.- a | ^ D 
■*■ |ffx) + g(x) - L 1 -L 2 | < E)). 

The conupTJter continues to use the full skolem notation throughout its 
proof r 

Before we follow the proof procedure for this theorem in great 
detail* we first sketch the proof that the computer will produce. 

Given E > 0 . choose H, N " r Ep and Eg so that 


H > i'\l z \ ■ 

M' >11,1, 

E 1 < E/E’K * 

E 2 * min (M/Z, E/4-M 1 ) . 

By hypothesis„ there exist D ] and U £ such that 0 < Dj and 0 < Dg * end 
for all x, if x M and ]x - a| < min (Dp D^} * then 
|f(x) - l 1 1-e t . 

and 



■^(x) - L^j 1 Eg ^ 

Furthermore, for att x, if x f a „ and jx - aj < min (Dj* D ? ) , 
then since 

|s(k) ’ \~2 j < e 2 - m * 

It foTlows that 

|g{x)f <= M/2 + \l z \ 

< m + m/2 . 

|g[x)| < M . 

So let & be a number such that 
0 c D * mfn {D^, ■ 

If k Is any number such that x t a and |k - af < D , then 
|f(x)-g{x) - Lj-Ljl 

3 IgtxMffx) - L,) + L ] -(&(k) - L z )| 

1 |gt*Mf(x) - L|)| + |L|-(gfx) - L ? }| 

- IstxJMftx) - 1,1 * I^Hgfxl - l 2 | 

< M - E/2»N + H l ■min [H/2, E/4‘M') 

± E/2 + K 1 ■ E/4 'K' 

■c E r QED. 

The key to this proof f$ the proper selection of M, H‘, E^ * E^, 
and D, The computer makes precisely these same selections though its 
handling of types, 


We now resume that description of the computer's procedure 
in finding its proof. A call is made to 

(IMPLY (a a R + T ) NIL) 

where a, £„ and r are gtven in {if) above. 

SET-TYPE is applied to {a a B), assigning type R_ to a* ly 
L^. and type ERR to f and g, and the subfornailas (a e R) j (L^ c ji) T 
(Lj tj)* (f - TRR), and (g c PRR) S are removed from j and ^ , 

Rule 5 is applied* converting the formula to 

(c a s a 0 < E + 0 < 0 a (xeJJ.A x / a a j x-a | < D 

- - l } l z \ < E)> 

SET-TYPE is applied to the hypothesis; E is assigned type *G and 
(0 < E) is removed. 

Rule 8 calls imply on the two formulas 
(a a e ■* 0 < D] 


and 


(aAS - (xePa x ? a i \ [x - a| < P 

■* if{X| )'g(K) - L| *L 5 | < E)) 

The first call is satisfied by Rule 17. which uses SOLVE* to 
assign type <0 => to D, The second results in an application of Rule 5 S 
so the current subgoal Is 

{a a e a (x e R a x / a A |x - a| < P) 

- ]f(x) p g(x) - L ] ■l £ ] < E) 



SET-TV PE is applied to the hypothesis* x is assigned type R 
and (x t fij is removed. 

By Ryle 7, the reserve r! is set to 

{B a A |k - af < D) , 


and 


(a - |f (x> *g (x) - L| *Lj | < E) 
becomes the current goal. 

Rule 4 (backward chaining) is now applied. That is, the pro¬ 
gram tries first to establish the conclusion |Ttx) -gC^) - If \ < E 
from This is subgo-aT (1). When this subgoal is established, the pro¬ 
gram tries to satisfy the hypothesis of cl s namely subgoal (S') below, 


(1} (0 < D-J A (x-| e R, a X] t 5- a \x - a| * D 


■* I ?(*-]) - L 1 | 

* |f(x)*5(x) - L 1 -L ? ] < E) 

By Rule 1 the program first tries to prove 

(0 < Dj -*■ |f(*)*£(*) - L^Ljf * E) * 

But this fails. Therefore by Rule ? (2nd part), 

((*1 e R a *1^9 a U 1 - aj c 0 * |ffK|> - L| | « E|) 
■* |f{x) -g{x) - L^-lgl c E) 


becomes the current goal. (From now on we shall not mention those Sub¬ 
goals which are tried but not established.) 


Again the program “chains backwards" using Rule 4 . The current 


subgoal becomes (11) and the hypothesis 


(xj c a X| f a A i*i - af < D) 
is satisfied later at (12). 

{IT) (|f( m t ) ' L i I " £ 1 " - l } < 2 \ - E) 

The program now tries to apply Rule 16* the limit heuristic. 

First 


[EXTRACT CffKj - L,) ff (k) i g(x) - L^)) 

is computed to- be (g(x) *L^ - L^*L^) c), where a * [x/x^]]. This 

follows from the equation 

[f[x)*gU) - L i +L 2 ^ = (£9(*)*(f(jO - Lj) + {g{x)-L 1 - 1_ 1 -L^)J 

Because the result of the tell to EXTRACT is not NIL, Rule 16 is applicable. 
The program tries to establish the three subgoals (Til), (ll2} t (113)* in 
accordance with Rules 16,1* 16,2+ and 16.3, The current subgoal is 

(111) f& a x ^ a A |x - a| ^ D ■+ |g(x)j x M) 

where M is a new variable which Is assigned type <0 *>+ (Also M is 
made an additional argument in the skolem expressions [Dj.E|} + f) + 

(x D), in accordance with footnote 6 above. Although these new skolem 
expressions (D^ M). {0^ ^ { K D M), will not appear in our des¬ 

criptions since we are abbreviating them to Dj + D^+ x+ they nevertheless 
play a crucial role, For example* in step (111 1) below the M 1h (x D M) 
prevents Rule 17 and 50LYE< from assigning type <|g(x D >l) i => as the ans- 


wtr to (III See Section 2,1 J 

By Rule 7. the reser^ Fi is set te (:< * a A ,* - a| < 0) and 

(S - jg(x)| « M) 

becomes the current subgoal, 

fftule 4 is applied, (111 1) becomes the current subgoal and 
the hypothesis of p is satisfied later at (111 2). 

(Hi 1J (0 < e _R a x^ j* a a ^ - a | t 

- |g(x 2 J - L a | < e 2 ) 

■* |g(*JI < h)* 

By Rule 7 the program tries 

(Uj el JR a x 2 t a a ixj - a | < ■+ |g(x^) - Lg | < Eg) 

- |g(jt) ] c H). 

Another application of Rule 4 sets up the two subgoals (111 11] 
and (111 M), 

(111 11} {|gfx a > - l z \ < E 2 - |gtx>| - M) 

Sine, (EXTRACT (,(«,> - L,> jU» yields (1 L ? W>*]) the 
limit heuristic is applicable to (111 11}, Because 1 Is returned as the 
value of K from EXTRACT, only subgoals (111 111) and (111 U2) are tried, 
in accordance with Rule 16. The current subgoal becomes 

(ill ml (|g(*) - l 2 | < e 2 + |g(x) - l 2 | - m/2], 


By Rule 18* the program tries to establish 


(l 2 < m / 2 ) v n 2 = m) 

The first half of the disjunction is satisfied by a call to 
(SOLVE* E ? M/2}, giving type «-■» >1/2> to E^. Thus subgoal (111 111} 
is Established and the program tries to prove 

(111 112} [x i* a * U * a| 4 D * |L £ | < M/2), 

Hole 17 is applied] (SOL|L^| M/2) is called, resulting 

in the type <2* I ^ for M r Rente both subgoals of (HI 11) are estab- 
1fshed. 

The program now returns to the subgoal 

011 12) {x t a a |x - a | < D + 

*2 E 1 A x 2 / a A |x g - a | < * 

where a - [x/x^]. That is 

£x f a a i x - a | < D 

a x / a A jx - a | < D ? ). 

This subgoal is established by several sub-calls. The conclusion (x e RJ 
follows since x 

has type JL (x / a} occurs In the hypothesis. And finally 
[ |x - a | < D -+ |x: - a j < D^> 

is established through Rules 18, 17, and a call to 5QLVE<* As a result, 
the type of D is changed to -=0 D 2 j , 

(111 2) (x / a a |x - a| s D * 0 t Ej) 

is established by Rule 17. SOLVE* types E^ ss 


*0 M/2>, Recall that 


S' 11 {soot 1 d) 


was given type*-* M/2 ■ at {111 111]. Thus both subgoals of 

(111) have been cstahl fshed and the prog ram returns to the second subgnal 
Of the first use of the limit heuristic 

(112) {}f{*) - Lj |t e ] -* |f(x) - L 1 | < E/2M ). 

This subgoel is quickly established using Rules 17,IS and 
(SOLVE* E/2M), which assigns type *-=« E/2M > to E^. 

The third subgpal of the first use of the limit heuristic is 

(113) (BA K I 1 i a |x - a| < D - [g{x)r L ] - L|Lg | < E/2), 


By Rule 7i the reserve 12 is set to [* i a ^ jx - a | <0), 
and the current suhgoal becomes 

(ti -* |g(x] L| - L 1 L 2 | ^ E/21- 

The program chains backwards twice. 

(113 1) (0 < D £ a (h e R A x f a A Ijc - a I * Dj 

- |g(x) - L z | < E ? ) 

- igtxK, - iyi 2 \ < m) 

(ns ill (lg(*) - l 2 ! < E 2 -* |g{*Hi - L t‘ L 2 1 4 E ^ 

Since [EXTRACT fg(x) - L^) (gUM, -L-, -Lg)) yields 
(L 0 T) p tine limit heuristic is again applicable* and subgoals 
(113 11T K (113 112} and [113 m} are tried. 

[113 111) (* i a a \x - a| ■: D - \l x \ < N‘} 

becomes the current subgoal* where H‘ is a new variable of type <0 =>* 
This goal is established by assigning type <|L } | « to K\ by Rule 17 . 

(113 112) (|g(x) - lg| < * |g[x} - L 2 | < (E/25/2-M 1 ) 

This subgoal ts established by use of Rules 17. 16* and a tall 
to (SOLVE* £ 2 E/4-M 1 }, E £ is retyped as (intersection *0 M/2> 

<— E/4-MS), Recall that E 2 had been given type <0 H/2» to establish 
(111 2). Since the program does not know which of H ft end E/4.M' Is the 
smaller, the intersection is given as the answer, after it has checked 
that the intersection is non-empty. 

The formula 


{113 113) 


(x f a A ix - a | < D -*■ | □ [ < £./4) 


is the last syb^oal of the last use of the limit heuristic. It is 
satisfied since 1 already nas type 0 “ , 

The program now returns to 

(113 12) (K t a A |k - a| < D 

?! £ : R A nM A [x*ah 0 £ h 

s.'hich is the senie as (111 1£), Also 

(113 2) (x f a a | x - a | < D + Q < E^) 

is the same as (111 2). 

All of the subgoals of the first application of the limit 
heuristic at (1 1) have been established* giving as an answer to (I 1) 
the substitution o - [x/x^ i *A, : ]. 

The program now tries to satisfy 

(12) (0 a x. f a Ajx-a|<D 

' S 1 e £ A “1 * a A !*1 ■ a l 4 V ■ 

The substitution [x/x-jJ establishes the first two parts of the 
■conclusion. To prove the third part* the program tries 

£|x - «| « D ■+ k - a | < D.,) , 

which results in the retyping of D as (intersection <Q Dj>h 

Recall that 0 previously had type <0 D^>. 

Finally the subgoal 

( ■ A x t a A |x - at] < 0 -+ Q c Ej) 
is establ ishe-d by Rule 17 and a call to (SOL VE< 0 E^) which retypes 


ascQ £/ 2 - M), previously had type E/? M* T 

The proof is comr'letc. k : & list here thie final types assigned 

to the variables, Note that the program has made just those "choices 1 ' 
described in the sketch of the proof which was given earlier, 

t 1 0 1/2-H> 

(intersection M/2> £/4-M' >) 

0 (intersection *0 D^>) 

M <2 ■jL^ | “> 

H" <1^1 K -> * 

This proof may Seem long and drawn out byt these are essentially 
the steps a human prover would have to follow fn finding and exhibiting 
a proof, 

in the following examples we proceed directly to skolem form 
and consider only the proof of the main conclusions. Kany steps in each 
proof are omitted. 

The notation H!.^ is used to denote the hypothesis of Step i. 

Rule reference numbers are sometimes given to the right uf formulas along 
with new type assignments. 

Example 2 . (composite continuous function theorem). 

1, (g is continuous at a) * (f is continuous at g(a)} 

- f^g is continuous at a. 

2 . Lim g a g(a) A Lim f g{d) f(g(a)) *. Lfm (f:g)a f(g(a))< 





3. {0 ( i| * (3 *' A 1 A ^ A | x i ' a | * D i 

- |g()i 1 ) - g{a)j * E^)) 

^ (D < E.g ■+ (0 < Dj- c ^ A K 2 ^ ^ ^ 1^2 -a l ^ ^2 

* |f(* z ) - f[gCa})| < E ? ))) 

—* 

(0< [ - {0 * D a (x t a x f a a j x - a| *D 

- ]f(g(x}} - f(g(a))| c 0)3 

In 3 the variables are Ej * T E,, k~ p D p and the sfcolem expres¬ 
sions are {D^ EjK (l> 2 >* [EL [x D}* fa)* etc- 

NEW TYPE ASSIGNMENTS 

E <0 => 

[) <0 =■> 

7. f|f(x 2 ) - f(9(a)31 < - |f{g{x)) - f(g(a)H *E) 

S, (E^ * E V Ej 51 E ) 11 6 

9, fmv£< E 2 E) L 17 E 2 <-= E> 

ID. [Hg + 0 ^ E ? ) . a condition from Step 7, 

11. (SOLVE* a Eg) 17 E £ ^0 E> 

12, fttg •* ^2 E — A *z ^ a A I*? “ *1 * n 2 V ■ * condition from 

Step 7, where a * [gfxj/xgl 


CURRENT SUBGOAL 

RULE 

(H a - 0 * D) 

5, 8 

(SOLVES 0 D) 

17 


6. [K 3 A x ^ 5 a |X - a| < 0 

*Jf{gU» - f(g{a))| « E)j 

T 





<! — A 


13, 

(H 6 ' 

lg{*} - 

& f * 

3 


14. 


- s£a)? 

< - 

- gftiij ■ 

o 2 ) 

IS, 

(SOLVE, 

E i V 


ISp 17, ff = 

[x/k^] Ej 

16. 

(h 6 * 

M " a) 

D ! ) > a 

condition from Step 14. 

17, 

il* - a, 1 

< D - 

J* - a, 1 

■=&!> 7 


IS. 

(SOLVE, 

0 0,) 

- 

IS, 17 

D 


> 


Qy-* 


CO 


5-17 


Example 3 - (Differentiable functions are conti nucus). 

If 1 fm f t* +h ) “ f ( a ) * F 1 then 1 Ini f(x] = f(d). 
h-K) X*a 

1. (Derivative f a F 1 ■+ Continuous f a} 

2. (Lim q 0 f ■+ Lim f a f(a)), 

uhere q{ h) is the difference quotient . 

{0 < Ej - K (Q * A (ti t R A h f 0 A fh| ^ D-j 

- I f(»*h> h - f<») |. r < E,m 

(0 -* E -* (0 < D a (x e R a x ^ a a |k - a) < 0 

ff(x) - f(a)l < £))] 

In 3 the variables are Ej, h, D, and the sfcolem expressions 
are E 1 h UK U D)* (ah (F'h etc- 


4. 

5 , 


(H- a K f a A |x - a j (D 


{ [f(*+h) - f(a) _ F , 


< E, 


]f(x) - ffa)| < E} 


|f(4 - fU)\ < E) 

Rule 4 


X R 


The limit heuristic Rule 16 is applied, 

(EXTRACT ( f ( B ^ h ) " f ( a ? - F 1 ) (f(x) - f(a)J). yields 


((x - a) (>: - aKF 1 & ), inhere j = [{x - a)/h]. 

5, (H^ -j.|x-a|<M) 16.1 

6. f |x - a | t 0 -*■ |x - a | < n) 


7. (SOLVE ■= D M) 


18, 17 


D <0 M> 









- F'l 


S. { 


ffxl - f{a) 

x - a 



-F 


. r 

- & 

< 

E/2-K} 

Rule 16.2 


9, 

(SOLVE* 

h 

E/Z-HJ 



IS, 17 

E j <-■» 

in. 

{H 4 ’ 

|(x 

- ftJ.F'| < 

m) 

IS.3 


n. 

l\* ' 3 i 

< 

D -■ ft* - 

aj 

‘F 1 1 ■: E/2) 



The limit heuristic 

is again 

used, EXTRACT yields 

(F 1 0 

12, 

[H 4 * 

IP 

1 < M) 



16.1 


13. 

(SOLVED 

IF 

■| < H) 



17 

H < |F 

14* 

iU - a| 

C 

D * J k - a 

1 

< E/4+M 1 ) 

16. £ 



etc. 







15. 

Ma 

A 

* 

i 

□ft 

A 






*■ h f. 


A h- ^ 0 a 

IN « Pit 

4.2 



a condition far Step 5 

. 

o - [(x - 

a)/h]* 


16. 

("is " 

(x 

a) Ljy 



a 



True 

by Rule 19 since both x 

and a have type R. 


77* 

(* f a 


k - a i* D} 


8* 7 


Ifl. 

(x - a 

= 

0 ■+ X a a) 


12, 13 [from St 

ep 15} 

19, 

(S0LVE= 

(X 

-a-0> [x,-a)f 


2D 

TRUE 

£15. 

f|* - a | 

< 

D -N |x - a 

1 

c Dj) 

12, 13 [from Step 15) 

21. 

(SOLVE < 

D 

V 



17, 18 

0 


(intersection <0 E/4■ M 1 ^ <-» D^=0 

M’ 






2 2 

Example 3. (1 in x - a"), 

7 

1 . {f = A x * ^ Lin f a (a-a)J 

2 , (0 < E ->■ (0 < D a (a s JR^ f\ * / a ^ \x - a j * 0 ■+■ |*+?. - a-a | < E))) 

In 2, D is a variable and {£), (x D), and (a) are skolem expres¬ 


sions. 

SET-TYPE assigns type <0 «> to E. 

3. (0 * D) Rule 2 

4. (SOLVE* 00) 17 D <0 -> 

5 . (x f a a |k - a | f E) 

-*■ |x*k - a-a | < E) 2 x R 

6. (|k - a| < □ ■+ [x-x - a-a| < E) S 

The limit heuristic is used, {EXTRACT (x - a) (x-x - a*a)} 
yields ((x+a) 0 T), 


7. 

(ti 5 * 

|x+a| < 

M) 

16,1 



The limit 

heuristic is used 

again, (EXTRACT (x-a) fx+a}) yields 

(1 

2^a T). 





8. 

(1* - a| 

C p + 

i* - *1 * m) 

ie,i 

(from Step 7) 

9, 

{SOLVE* 

0 M/£) 

Ifl, 17 

D <0 M/2> 

10, 

(H 7 * 

is-*: < 

M/2 ) 

16.2 

(from Step 7) 

11. 

(SOLVE* 

|2-*l 

M/2) 

17 

M <2-|2-a! “> 

12. 

t|x - al 

< D -* 

|x - a | < E/2 ■ M} 

16,2 

(from Step 5) 


17 O 

(intersection *0 H/2^ <-■= E/2-M^) 


13. (SOLVE* D E/2-M) 



Example 5 . (Limit of a quotient). The proof ef this example is not 
complete. 


K 

2 . 


(Lim f a L ^ L / 0 ^ Lim (1/f) a fVU). 

fO ■= - fO < D ] a (« 1 e_R, A X-| # 0 a \h-^ - e| < D } 

♦ If (x-,) - L j < Ejin 

A L * 0 + 

(0 < E + (,0^D A (x e ft A. x^O a |x - a | < D 


fe- 


< E))> 


3. Uf(x 1 )-L|<E 1 - 


1 1 

TO" L 


E) 


The limit heuristic Rule 16 is applied* 

(S0LVE< ( f ( x |} - L) - \ )) yields t‘|" 7 p|^y 0 c) % -where <j * [x/x T ] * 


We are required by Rule 16 to establish the subgoals 


0} (H, 


-1 

L'f(xj 


< M), 


16,' 


and 


(2) - L| < E 1 - |f(x) - L| < E/2-M) 16.2 

Subgoal (2)15 easily established by assigning type <-«» E/2>M> 
to £^i but (1) presents difficulty. In fact the program is unable to 
give a proof without some axicms or a change in the program. See Section 7 
for further comments on this example. 










6, Resolution 


In this section we show how the limit heuristic and the theory 
of types explained above can be used in ^esotutfon based programs, 

This is done by giving some additional rules for resolution. These 
are; 

6.1 SET-TYPE Rule 

For each unit clause of the form 

{x l A} 

where x is a skolem expression which does not occur in A, assign the 
type A to x. Also for each unit clause of the form 
(x < a) 

where x is a skole.m function which does not occur in a* assign the type 
«-=a> to x. Similarly for unit cl^j^s of the form (b^x) assign type 
■*"* to x. In each of these cases* remove the unit clause. If x 
already has a type B and we are trying to assign a new type A* then 
assign the type (An &) if it is non-empty; If (AnB) is empty, add the 
emoty clause (f,e, s the pronf is finished); If it cannot be determined 
whether (AoE) is empty, leaye the original type as is and do not remove 
the unit clause. This SET-TYPE rule need only be applied at the 
beginning and after each new unit clause is generated, 

6,? SOLVE* Rule 

For a clause of the form 

1> v i * i- A) 





(!) if x has type A then add D to the list of clauses* [2) If jf is a 
variable and X does not occur in A, then assign the type A to x and add 
D to the list of clauses. 

6.4 TRAffSITIVE Rule 

When attempting to resolve two clauses uf the form ((a b) V A) 
and {(a k < c)vB)„ where = a^ for some substitution if (SOLVE b c) 
is true, then add the resolvent (ft y E)^ to the list of clauses, 

6.5 SOLVE* Rule 

For a clause of the form 
D v (A f &}* 

if (S0LVE= A 6) is true,, with the value a, then add to the list of 
clauses. 

6.6 When attempting to resolve two clauses of the farm 

({a * b) y A) and [[c/ d} y B), 

if (SOLVE* {a-c){b-d}} is true, with value a, then add (A y B}^ to the 
list of clauses, 

Before going to our limit heuristic rule, we give some examples 


using the above three rules. 




Examo 1 e J_ 

(0 * a - SOME * (0 < x a x * a)) 



Clauses 

Clause References 

Rule 

New Type Assignments 

1. 

D * a o 

From Theorem 


NONE 

2. 

o M V * 




3. 


1 

SET-TVPE 

a,-; <D m ? 

4, 

* i *o 

2 

SOLVE* 

X tOtf> 

5. 

p 

4 

SOLVE* 

x *0 a 0 * 


We could have removed x j ag first, 

4* 0 i s 2 SOLVE* x *«a s > 


□ 


5. 


4 


SOLVE* 


x <0 a^ 








Example 2 




0 * 0 1 A 0 4 D 2 - 

SOME D (0 < 

P A 

0 * », * D « D.) 


Clauses 

Clause References 

Rule 

New Type Assignments 

1. 

0 - D-j 

1 




2. 

0 * 0- 

iFrom 






[Theorem 




3. 

0 | Dv D 

1 D 1 V M ®;| 




4. 


1 

SET-TYPE 

D I 

<0 W3 

5, 


2 

SET-TYPE 

D j 

tQ *■:■ 

6. 

D f D 1 V 

D \0 Z 3 

SOLVED 

a 

<0 

7, 

d 1 n 2 

6 

SOLVE< 

D 

<0 Dj> 

3. 

o 

7 ’ 

SOLVED 

D 

{intersection 


<0 D^O B 2 >] 

At steps 7 and S* SOLVE*required the knowledge that P T and a, h&th had 

I £ 

type <0“>. 


Example 3 


1 r Xc^ 
1 , XeN. 
3h x=x 


(xe _P a xe£—► xfa) 
From Theorem 


4, 


I 


SET-TYPE x 


<Q=> 








Example 4 


fD ^ a a D b 


Clauses 

1. 0 f a a 

2, 0 < b e 


— -( SOtMEz (0 < 2 a fc < z- ■'■*■ c % a) 

{d < z — d < b})) 

Clause References Ruts he* Type 

Assignments 


3 . 0 j z v c s < z * < i 


4, 0 f z v c B * 2 v 

d c f b c 





5, 0 | i v t n f a a v 

d c < 2 





6. 0 jfc z v Cflf a q v 

dpj b. a 





7. 


1 

SET-TYPE 

a a 

10 ■=•> 

a. 


2 

SET-TYPE 

bp 

iO ■=> 

9* Ce < i v d 0 * z 


3 

SOLVEc 

i 

<0 => 

10, c Q < 2 v d 0 4 b 


4 

SOLVED 



11, c c < z 


9,10 

Rule 6.4 

2 

cO b 0 > 

12. c a y a 0 v dp < z 


S 

SOLVE* 



13. c, a ^ a a v dp j b 


6 

SOLVE* 



14. c, a i aa 


12,13 

Rule 6,4 

l 

<0 bp> 

IS. o 


11,14 

Rule 6,4 

1 

(tnteriecti 


^0 bp> j eO 







% ordinary resolution wo wcold require at least two axioms 


A1 r ({J i a A O' < b S0T-1E 2 (Q < 2 a z < a A z ", b)) 

A2. (k < y A y < w ^ t < w) * 

and a long and difficult sequence of resolution steps. This very exampl 
occurs as a disguised part Of the proofs of most of the limit theorems, 

and therefore it is Important to have an easy proof for it requiring no 

axioms* 

Example 5. 

(x < -1 V 1 * * ■* 1 < |x|) . 

This produces clauses 
1. x 0 « -1 „ T < X 0 



Since there are no unit clauses, we cannot apply SET-TYPE, and 
S0L's r E< cannot handle 2 because there is no type assigned to x^ + Thus 
the procedure seems to fail here unless we have more axioms. However, 
if we are employing the SPLITTING technique (see [1], end of Section 4), 
we know that resolving 1 and 2 is equivalent to resolving both 


V. < =1 

o 


1 ", 1 < * 


0 


i * ig 



{Note that we split Clause 1 since the two literals of 1 have no variable 
in common,) These are both easy. 



<-» -1 f* 


(0 - * 


3V 

1 1 

SET-TYPE x <-*-]> 

4 1 . □ 

r 

SOLVE< 

3'". 

r 1 

SET-TYPE x <1 -> 

0 

4' ‘. O 

V i 

SOLVE^ 

If we do 

not SPLIT^then 

two axioms* (1 < x - 0 < x) and 


■+ |x | B xj are required. 

Ordinary resolution would require six axioms and a Ten 



deduction. 


6.7 LIKIT-HEURISTIC Rule . When attempting to resolve two clauses of 
the form 

{ (1A| < E r ) V C T ) 

H1b| - E) V C 2 ) * 

try to find a substitution o which will allow B to be expressed as a 
non-trivia! combination of A , 


(B = K*A + L}# 

and* if this is possible* add the following new ''resolvent 1 ' clause to 
the clause list 


H|K| * M> V *£|A| * 

where N Is a new variable with type <0 
The first part of 6.7 can be 
EXTRACT produces the desired X, L, and 


EVZ’H) v (IL | * E/Z) 
14 

done by (EXTRACT A E).. 
u, uhere c is the most 


v C 1 v 

See Section 3.1. 
general such 


substitution. 


14. Also the variable M is made an additional argument of all sliolem functions 
appearing in [T) which already have at least one argument. 




Example 6, Given the clauses 


1, Iff*,) - U, I <E] 

3. |f(xj + g{x) - L ] - L z \ < Z , 

where ly Xj. are variates. and E T Ep E £ each has type #0 

Using Rule 6.7 on clauses 1 a,id 2 we get 

4. (EXTRACT (f( k-, ) - L ] + g(x) - l } - L^}) 

a 0 (g(x) - l 2 ) [x/x^J (See 

5. Kill - H) v *|f(x) - L^f c E/2 M v ^|g(x) - | < E/2} 

6. Kf(ic) - L 1 1 * E/2-M v ^|g(ji) - L z | * E/2} 

From 5 t using the SOLVE* Rgle s type M. is <1 ™>„ 

Using Rule 6.4 on clauses 1 and 6 we first call 

7. (SOLVE* E-j E/2-M) 

This results in assigning type <0 E/2+M> to Ep 
a. (n.|g(x} - L z j * E/2) 6.7 Rule 6.4 

Using Rule 6,4 on clauses 2 and 8 we call 
9. (SOLVE* E 2 E/2) 

This results in assigning type <0 V2> to 

O 2,8 


n= > . 


Section 3,1), 


ID. 


Ryle 6.4 



Example 6 < (From the theorem that a function having a derivative at 
a point is continuous there). 


Clauses 



I. 


2, Iff*) - ffa) I l E 

3. [x - a| < D 

where h, D and are variables, and the other terms have type _R. 

In attempting to resolve 1 and 2, the limit heuristic Rule 6.7, 
employs EXTRACT to obtain 


(f(x) - f(»)) = [h ■ _ P-J , h . F .j e 


where a is the Substitution £{x-a)/h]. It therefore produces the new 
clause 


4 ' I* ' a i I* N V I -F'l^V |(i - a)-F'l f | 


where M is a new variable of type <Q Ryle 6.4 applied to clause H, 
gives 



and D is assigned type ^0 MS. Rule 6.4 applied to 5 gives 

6, j(x - a)*F"| 4 f 

and Is assigned type E/2-M>. 

Again the limit heuristic Rule 6.7 is used on clauses 3 and 6. 
EXTRACT yields 

U - a)-F' « F'-fx - a) + 0 


and the new clause 













7* 


F 1 ! f v ]x - a | / ^ 


is produced, where M' is a new variable of type ■>. 

Rule 6-4 Is applied to 7 to obtain 
E 

5- I* “ a I * £7fr 

and M' is assigned type < |F* | ®>. 

Finalty t Rule 6.4 is applied to B to yield 
9 . D QED, 

This final step also assigned to D the type (intersection ■=— E/4*N’> <0 W^i 
Ordinary resolution would require several axioms for this proof 
and a very long deduction. Ttfis example constitutes a part of the proof 
that the limit of asuib of two functions is the sum of their limits, 


7, Garments 


One remark of note is that* except for the example on quotients 5 
(mentioned below) these limit theorems were proved without the inclusion 
of axioms (reference theorems). This is desirable because for most 
automatic theorem proving! programs t the axioms have to be selected by 
humans for each theorem being proved. Of toursejWe had to include the 
limit heuristic itself which acts like some axioms! but it does not 
hinder the proof of other theorems not requiring it, 

because it does 

nut release its action unless Its need Is detected- This is in the 
spirit of the “frig Switch" mentioned by Newall* Feiger»baum t and others, 
It was surprising to us that sc many theorems would follow front 
one heuristic. Will this happen in other areas of mathematics? Can 
we provide a series of big twitches which will handle many areal of 
mathematics without excessive irrelevant computing? We doubt that it 
ca.n be so simple, but nevertheless, feel that such heuristics should be 
Sought for other areas of mathematics. The success of such a collec¬ 
tion of heuristics will depend in great part on the cleverness Of the 
overseer program which directs the use of these heuristics. Hewitt's 
programing language PLAINER [5] might be well suited for writing such 
overseer programs, or for improving existing ones. 

calculate: versus prove 

One thing that contributed to the success Of this effort was 
the use of the routines SOLVE^, S0LVE= d and SIMPLIFY, The point is 




that they were used to calculate something rather than prove something, 
Since proving is inherently harder than calculation, we feel that such 
routines should he employed as much as possible. Think how difficult it 
would be in our proofs to enploy a set of algebraic sfmpTif[cation axioms 
instead of using SIMPLIFY. Or suppose that instead of using EXTRACT 
to give us a linear decomposetton„ we tried to prove that such a linear 
decomposition exists. This suggests that mare use ought to be made of 
calculation procedures within the proving mechanisms of automatic theorem 
provers. For example a 


in proving theorems 
about 

derivatives 
1imits 

differential equations 
real functions 
measure theory 
algebraic topology 
any field 


we might calculate 

11mlts 

solutions to equations 
deri vati ves 
solutions to equations 
that two sets are equal 
group theoretic results 
a most general unifier 


The unification algorithm is such an example * and it revolutionized 
automatic theorem proving when J. A, Robinson defined Its role In reso¬ 
lution* A source of power to a mathematician Is his ability to leave 
to calculation those things that can he calculated and thereby free 
his mind for the harder task of finding inferences* 










The use of membership types also helped considerably In proving 
these limit theorems. It is as if in proving., 

(1) SOME x (Hx)Aq{*)) 

we first find A, the set of all x for which Pfx), and assign A as the 

type of x, and then find B the set of all X for which q(x), and if 

{A A B) is not empty* assign it as the type of x, and declare (1) to be 
true. This allows a maximum amount of freedom fn the proving of qfx) 
after P(x) has been proved; indeed x remains a variable , even though 
restricted, in the proof of Q(x) r 

This procedure worked well in our examples because linear 
inequalities are so easy to solve. No do not recomend that such a 

procedure should be used in all other situations, when theorems of 

type 0) are being proved, because- it may be too difficult for un¬ 
necessary) to solve for A the set of all x for which Pfx) is true* 
before proving Q{x), Vie do_ suggest however that a procedure be 
followed that leaves x as a variable , though restricted, after P{x) 
has been proved and while Qfx) is being proved. Type theory might 
help attain such an objective. 

Our present program will not prove limit theorems involving 
quotients, such as 

(1) lim f(x) = L L=fC lim 1 = 

x-ra x-a ffx) l , 

without the help of some axioms (see Example 5, Section 5), However, 

no axioms are needed for the proof of (1) if we add another heuristic 

to the program which is similar to the limit heuristic, but which is 





based upon the 1 neque 1 i ty 

1*1 - \y\ s fK-yt 

instead of the triangle inequality 

l*+y| Ul + lylj 

upon which the limit heuristic is based, Eti fact, it might be desirable 
to develop a more general heuristic, which not only encompasses both 
ideas„ but also tries to attain such objectives as bounding an expression, 
e,g, 

|gfx>| <W* for some 
and making an expression small, e,g. 

|f(jc) - L| < E, for a given E, 

Finally, it should be mentioned that the routines described In 
Section 1 are meant for general use in analysis and not just for limit 
theorens. It is hoped that routines of this kind can be used to make 
up an analysis prOver in which relatively Simple heuristics can be added 
for great effect. 
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